The Fornetix Orchestration Gateway™ and corresponding suite of plugins extend the groundbreaking capabilities of the VaultCore ecosystem by connecting and translating leading data services such as AWS, Azure, F5, and more — plus custom solutions for proprietary systems. This developer-friendly API integration tool allows you to integrate your security with the rest of your data system.
Technology grows and transforms itself every day. With a wider array of terms defining what infrastructure is and where the edge of an IT system is located, the challenge of keeping data secure from breaches is constantly evolving and expanding. Protecting data by means of encryption requires management tools that adapt quickly to these new architectures and technologies. Orchestration Gateway is the perfect REST API companion to assist VaultCore to allow API plugins, provide non-KMIP access, and offer customized solutions for every customer.
To combat this constantly shifting landscape, technology companies must remain nimble and agile. There can be no assumption that new innovations will fit into existing security paradigms. Security companies must be able to quickly solve the problem of protecting what is new and different. More than that, the modern enterprise needs a way to manage the security for transformative technology such as IoT, containers, and the ever-changing cloud offerings. Given these challenges, Fornetix has created the Orchestration Gateway, a product designed specifically to adapt tried-and-true encryption key management and access controls to the unknown.
VaultCore is designed as a powerful solution to encryption key management. Make your data encryption rapid, scalable, and budget-friendly. For organizations and businesses, read our Guide to Enterprise Key Management to understand how VaultCore can help you. Rounding out VaultCore’s capabilities, Orchestration Gateway is the perfect companion to empower VaultCore for API integration, non-KMIP translation, and other API plugins.
The Orchestration Gateway is a framework that accepts Key Management Interoperability Protocol (KMIP) commands issued by the Fornetix VaultCore appliance and converts them to any API as needed. Fornetix has developed a library of plugins for a variety of systems that do not conform to a standard protocol for key management including Amazon Web Services (AWS) and Microsoft Azure. In this way, a customer is able to use their VaultCore appliance as a single-pane-of-glass for full key lifecycle management throughout their enterprise.
Installing an Orchestration Gateway is an investment whose value only increases over time. Customers are able to install one Orchestration Gateway and keep adding plugins as they are released for the most popular technologies. Because Fornetix took the time to create a framework and not just another KMIP client, plugins can be developed quickly and added as needed by customers. Now, full lifecycle key management can be achieved for nearly any technology on any platform, including proprietary systems.
Installing the Orchestration Gateway is simple and requires very few computing resources. Based on the .NET framework, the Orchestration Gateway is able to run on nearly any Windows Server or Linux system. Plugins are able to be added at any time. Further, Fornetix allows for the configuration of multiple endpoints and credentials for every plugin as needed. Having a light footprint means that the Orchestration Gateway can meet the needs of small businesses as well as large global enterprises. It can connect effortlessly with the plugins’ REST API protocols and translate supported APIs across channels. The VaultCore appliance provides a logical and graphical representation for each plugin installed on the Orchestration Gateway. This means that even if a customer has many plugins on a single gateway, keys are still organized automatically as if the customer had a different client for each one.
As an example of this multi-tiered configuration, let’s look at an enterprise Azure configuration. A single customer can setup multiple Azure AD directories for different divisions, each one with many different accounts. Within each directory, there can be multiple resource groups. Each resource group can have multiple vaults. The Orchestration Gateway allows a customer to configure even the most complex Azure setup with any number of variations. From there a customer is able to leverage standard key lifecycle commands easily without having to re-code or change configurations.